Over the course of the past year, our team added many new checks to the Acunetix scanner. Several of these checks were related to the debug modes of web applications as well as components/panels used for debugging. These debug modes and components/panels often have misconfigurations,…
Most common security vulnerabilities – Acunetix Web Application Vulnerability Report 2021
Every year, Acunetix brings you an analysis of the most common web security vulnerabilities and network perimeter vulnerabilities. Our annual Web Application Vulnerability Report (now part of the Invicti AppSec Indicator) is based on real data taken from Acunetix Online. We randomly select websites and…
The importance of web application security for government agencies
The Race to Close Every Gap Maintaining a solid cybersecurity posture is an uphill battle to close every gap in your defenses even as new threats and attack vectors appear on what seems to be a daily basis. Recent high-profile incidents such as the SolarWinds…
Building DevSecOps when you’re stuck in waterfall development
Software Development in Public Organizations In a recent survey conducted by the Advanced Technology Academic Research Center (ATARC) in partnership with the U.S. Air Force, federal, state and local government entities were found to use a wide variety of software development methodologies. Only a third…
Early access: The 2021 Invicti AppSec Indicator
Each year we analyze the most common web application vulnerabilities across thousands of assets and release the annual Invicti Appsec Indicator report. This year the results might surprise you. Watch this webinar on-demand or read the full report.
DAST is an essential part of a well-rounded application security program
Vulnerability management is one of the most important aspects of an information security program. Finding flaws, determining specific risks, and then following through to ensure those risks are minimized or eliminated sounds simple on the surface, but it’s not. Web applications and the overall function…
How to defend against recent attacks on Microsoft Exchange
The latest update of Acunetix Premium introduces a check for the primary Microsoft Exchange vulnerability that enables currently ongoing attacks. Microsoft warns against an organized criminal group known as Hafnium performing mass attacks against government and private entities, primarily in the United States. Initial reports…
World software giant selects Acunetix DAST+IAST for SDLC testing
It is a common myth that early testing in the SDLC should be based on SAST and passive IAST tools. This myth has been repeated often by sources that do not follow the developments of web application security and are unaware of the evolution of…
Frequently asked questions about Acunetix
Will Acunetix remove vulnerabilities from my web application just as my antivirus does? Web application security vulnerabilities are very different from malware. They are programming bugs – introduced by the application creators themselves, not by malicious parties. Therefore, the only way to remove them is…